Kent library staff are widely dispersed at six libraries on the Kent campus and seven regional libraries throughout eastern Ohio. Managers do not have access to login and authorization data on the live system. A review and audit of authorizations is necessary for the sake of general system security.

II. OPPORTUNITY:

The tools and the staff became available.

III. GOALS:

Provide easy-to-read web pages to managers throughout the library system. These pages would allow the managers to review system authorization information. Accomplish this review effort without having to provide access to the actual system tables to all of the managers. Improve system security. Identify potential training needs. Prepare for the eventual assignment of additional Release 10 authorizations.

IV. DESIGN AND TOOLS:

White Rabbit Software -- KentLINK Information Reports -- Logins and Authorizations

** A. ProcommPlus32 Aspect scripts that run against KentLINK, our INNOPAC.

1. scripts for login names and parameters and authorizations, and a utility script
2. scripts generate text files for login names and parameters, and a hex dump for permissions data

1. populates Access database tables
2. generates some static html pages
3. some VBScripts generate separate dynamic html pages e.g. the permissions page
4. goal: convert scripts to active server pages (ASP)

1. originally served from a desktop under Microsoft (PWS)
2. recently moved into production under IIS Web Server on an NT 4.0 server

1. limited to staff approved by systems staff
2. these folks by default can also see circulation data
3. intended scope limited to managers to help with authorization review and audit